Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
File: TkJsh9-8xVLceQ_sPtHN56j4huk.mft (raw, json)
Hash identifier: usp3l2EHftelSjWaPv1OP/bKZ+Um8YsdbFNdo0OiAGw=
Subject key identifier: D8:AC:4E:CF:A6:07:F6:57:F9:7D:E7:82:0C:8D:92:CE:CF:F5:BD:24
Authority key identifier: 4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
Certificate issuer: /CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Certificate serial: 0198D472E29331A979F65D3BE5BC379A048C
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
Manifest number: 0987
Signing time: Sat 23 Aug 2025 01:02:35 +0000
Manifest this update: Sat 23 Aug 2025 01:02:35 +0000
Manifest next update: Sun 24 Aug 2025 01:02:35 +0000
Files and hashes: 1: TkJsh9-8xVLceQ_sPtHN56j4huk.crl (hash: Iw47uycVXNEPF8qUUFLwi0bbfb60sa1DJLjFiiuoNOY=)
2: o1pkGMrhjFIHajUuas6hn3OkprM.roa (hash: vhDUewSi85hdhWxPSoEhr0a9lvOVAXD09OTRvqe5guU=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Sun 24 Aug 2025 00:37:04 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:98:d4:72:e2:93:31:a9:79:f6:5d:3b:e5:bc:37:9a:04:8c
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=4e426c87dfbcc552dc790fec3ed1cde7a8f886e9
Validity
Not Before: Aug 23 01:02:35 2025 GMT
Not After : Aug 24 01:02:35 2025 GMT
Subject: CN=d8ac4ecfa607f657f97de7820c8d92cecff5bd24
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:91:7b:38:bc:08:d6:1f:c0:52:bc:6f:1a:25:62:
a8:47:d7:7d:5b:a2:dc:53:6d:c8:97:09:22:25:b9:
8a:2f:85:59:b9:c4:eb:23:1a:e8:7a:78:5b:e4:95:
c2:51:54:ff:55:ff:04:17:db:fd:83:24:33:a2:7b:
21:ac:6b:11:8a:62:ea:9e:a6:f6:12:46:0a:49:0f:
72:68:30:51:01:a9:ef:89:20:ff:cc:bb:4e:2b:be:
96:ce:23:7e:54:bb:38:c3:43:b8:a9:ea:96:31:4e:
0a:19:29:89:90:cf:0e:3f:8d:92:85:40:d4:68:a5:
2b:ca:da:0f:34:99:e1:f1:61:90:52:d0:5f:81:44:
ec:ff:3e:f5:01:7c:d3:14:36:6a:03:47:c5:99:05:
a2:09:44:8f:d8:94:c4:72:54:56:d2:75:94:10:a1:
50:dc:0f:35:0f:73:1f:30:81:6d:be:76:e0:a2:40:
da:25:ec:14:94:23:85:06:a0:c3:35:d2:75:db:29:
92:67:4c:36:9c:f1:b8:c2:43:cb:fd:c2:74:e6:35:
ad:47:6d:39:b2:a4:7a:af:18:ad:21:3a:ae:b2:86:
e7:19:48:48:21:f7:9d:b0:f7:1c:a6:28:15:65:9d:
88:64:7c:30:f4:e3:96:6e:a9:02:2b:83:d2:21:60:
91:a1
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
D8:AC:4E:CF:A6:07:F6:57:F9:7D:E7:82:0C:8D:92:CE:CF:F5:BD:24
X509v3 Authority Key Identifier:
keyid:4E:42:6C:87:DF:BC:C5:52:DC:79:0F:EC:3E:D1:CD:E7:A8:F8:86:E9
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/TkJsh9-8xVLceQ_sPtHN56j4huk.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/49/e5bdc7-eb06-4626-84d7-13da74cd35a4/1/TkJsh9-8xVLceQ_sPtHN56j4huk.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
16:8b:f2:df:ed:a4:fa:7f:81:ff:41:a2:50:d8:27:3e:1e:a3:
5e:26:18:28:d2:8e:3e:98:37:52:b0:b3:02:aa:d3:5d:7e:00:
1d:e9:b7:97:07:43:ac:2a:c1:76:dd:d5:ac:59:30:7b:f3:3c:
1f:fb:cc:68:bf:cd:49:17:11:42:d2:83:f7:d7:a7:0c:e8:ca:
2a:6c:3a:75:db:f6:01:4b:a4:ff:ae:d2:c6:31:db:e2:50:05:
c0:69:58:32:45:19:89:e1:43:8f:44:1d:35:9a:14:f0:5b:5d:
f6:fd:67:92:1d:bf:e2:d8:08:0f:72:a2:6d:6a:21:ac:c9:20:
c2:6a:21:65:b7:24:72:1a:2d:3a:6f:d0:02:18:47:6f:26:a8:
73:5a:83:70:33:be:43:b3:6c:87:2d:54:cd:29:cd:14:a5:5f:
08:47:8e:37:44:3d:06:ef:2e:a0:be:c1:23:99:9d:39:1a:e8:
88:40:c0:f2:50:12:17:44:32:f9:2a:4e:e8:84:15:1f:d1:14:
38:d6:9d:10:82:0c:43:ad:05:56:bd:f1:72:57:c8:c2:11:e3:
b8:93:d1:3b:b3:4d:eb:27:c7:ac:34:4c:f0:a6:7f:af:7c:5d:
b7:63:c8:cf:02:a0:45:18:b1:1e:76:12:b7:04:c4:6b:07:df:
28:6f:b8:ac
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Sat Aug 23 10:20:19 2025 by rpki-client